Tor crashing on Android 7 after first run
After the first run of briar (if a tor circuit was established), almost any subsequent run crashes tor / libc for me. This happens both on my Lineage 14.1 phone and the emulator (with sdk 25).
Here's the log (I added the function names in french quotation marks for the tor binary in the backtrace (the last column)) :
LineageOS Version: '14.1-20170225-UNOFFICIAL-i9305'
Build fingerprint: 'samsung/m3xx/m3:4.4.4/KTU84P/I9305XXUFPB1:user/release-keys'
Revision: '0'
ABI: 'arm'
pid: 9222, tid: 9222, name: tor >>> /data/user/0/org.briarproject.briar/app_tor/tor <<<
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x4f4f4ad8
r0 befff748 r1 58b517d0 r2 410ec1c0 r3 befff754
r4 befff754 r5 4f4f4ad8 r6 00003918 r7 40e40500
r8 00000000 r9 00000000 sl 00000000 fp befff744
ip 4018f85c sp befff6e8 lr 401523c7 pc 40153bb8 cpsr 200f0030
d0 74657320746f6e20 d1 0000000000000000
d2 0000000000000000 d3 0000000000000000
d4 52414d4d55532072 d5 656e6e6f43223d59
d6 6f7420676e697463 d7 726f542065687420
d8 0000000000000000 d9 0000000000000000
d10 0000000000000000 d11 0000000000000000
d12 0000000000000000 d13 0000000000000000
d14 0000000000000000 d15 0000000000000000
d16 0000000000000000 d17 0000000000000000
d18 0000000001f66130 d19 0000000001881b68
d20 0000000000000000 d21 0000000000000000
d22 0000000000000000 d23 0000000000000000
d24 3f36c051b8f0af77 d25 3fa0842100000000
d26 3fdb6db6db6fabff d27 0000000000000000
d28 0000000000000000 d29 0000000000000000
d30 0000000000000000 d31 0000000000000000
scr 80000010
backtrace:
03-01 13:17:37.145 5444-5444/? A/DEBUG: #00 pc 0004cbb8 /system/lib/libc.so (timesub+35)
03-01 13:17:37.145 5444-5444/? A/DEBUG: #01 pc 0004b3c3 /system/lib/libc.so (gmtime_r+22)
03-01 13:17:37.145 5444-5444/? A/DEBUG: #02 pc 001fe300 /data/data/org.briarproject.briar/app_tor/tor <gmtime_r@plt>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #03 pc 00212794 /data/data/org.briarproject.briar/app_tor/tor <tor_gmtime_r>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #04 pc 0007d3f0 /data/data/org.briarproject.briar/app_tor/tor <format_iso_time>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #05 pc 0007ebe8 /data/data/org.briarproject.briar/app_tor/tor <dump_microdescriptor>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #06 pc 0007e3a0 /data/data/org.briarproject.briar/app_tor/tor <microdesc_cache_rebuild>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #07 pc 0007d5e4 /data/data/org.briarproject.briar/app_tor/tor <get_microdesc_cache>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #08 pc 000886ac /data/data/org.briarproject.briar/app_tor/tor <get_microdesc_cache>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #09 pc 0008527c /data/data/org.briarproject.briar/app_tor/tor <nodelist_set_consensus>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #10 pc 000804b0 /data/data/org.briarproject.briar/app_tor/tor <networkstatus_set_current_consensus>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #11 pc 00076db8 /data/data/org.briarproject.briar/app_tor/tor <router_reload_consensus_>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #12 pc 0007c3b4 /data/data/org.briarproject.briar/app_tor/tor <do_main_loop>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #13 pc 000713b8 /data/data/org.briarproject.briar/app_tor/tor <tor_main>
03-01 13:17:37.145 5444-5444/? A/DEBUG: #14 pc 00016ca1 /system/lib/libc.so (__libc_init+48)
03-01 13:17:37.145 5444-5444/? A/DEBUG: #15 pc 00071358 /data/data/org.briarproject.briar/app_tor/tor <libc_init>
I also uploaded a tombstone https://code.briarproject.org/goapunk/briar/raw/fileStorage/tombstone_00.
Steps to reproduce:
- Install and run Briar
- Wait until tor established a circuit
- Log out / Close Briar
- Start Briar
- Check the log (don't filter for Briar, check the unfiltered logcat)
Once tor crashed you need to close Briar through settings->apps->briar-> force close